Currently, the data management app lets a secondary owner access the thing deletion modal, but is given a 404 error if they try to delete it. I think the 404 is probably good, but the frontend should hide the delete btn and modal from a secondary user and the access control tooltip should mention that only the primary owner can delete a Thing.
Currently, the data management app lets a secondary owner access the thing deletion modal, but is given a 404 error if they try to delete it. I think the 404 is probably good, but the frontend should hide the delete btn and modal from a secondary user and the access control tooltip should mention that only the primary owner can delete a Thing.